From 5ace411fc7ead3bb93351c00e582246055a828e4 Mon Sep 17 00:00:00 2001 From: Joe Grandja Date: Wed, 19 Aug 2020 11:49:41 -0400 Subject: [PATCH] Add Jenkinsfile --- Jenkinsfile | 103 ++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 103 insertions(+) create mode 100644 Jenkinsfile diff --git a/Jenkinsfile b/Jenkinsfile new file mode 100644 index 0000000..aa8aa4e --- /dev/null +++ b/Jenkinsfile @@ -0,0 +1,103 @@ +def projectProperties = [ + [$class: 'BuildDiscarderProperty', + strategy: [$class: 'LogRotator', numToKeepStr: '5']], + pipelineTriggers([cron('@daily')]) +] +properties(projectProperties) + +def SUCCESS = hudson.model.Result.SUCCESS.toString() +currentBuild.result = SUCCESS + +def GRADLE_ENTERPRISE_CACHE_USER = usernamePassword(credentialsId: 'gradle_enterprise_cache_user', + passwordVariable: 'GRADLE_ENTERPRISE_CACHE_PASSWORD', + usernameVariable: 'GRADLE_ENTERPRISE_CACHE_USERNAME') +def GRADLE_ENTERPRISE_SECRET_ACCESS_KEY = string(credentialsId: 'gradle_enterprise_secret_access_key', + variable: 'GRADLE_ENTERPRISE_ACCESS_KEY') +def SPRING_SIGNING_SECRING = file(credentialsId: 'spring-signing-secring.gpg', variable: 'SIGNING_KEYRING_FILE') +def SPRING_GPG_PASSPHRASE = string(credentialsId: 'spring-gpg-passphrase', variable: 'SIGNING_PASSWORD') +def OSSRH_CREDENTIALS = usernamePassword(credentialsId: 'oss-token', passwordVariable: 'OSSRH_PASSWORD', usernameVariable: 'OSSRH_USERNAME') +def ARTIFACTORY_CREDENTIALS = usernamePassword(credentialsId: '02bd1690-b54f-4c9f-819d-a77cb7a9822c', usernameVariable: 'ARTIFACTORY_USERNAME', passwordVariable: 'ARTIFACTORY_PASSWORD') +def JENKINS_PRIVATE_SSH_KEY = file(credentialsId: 'docs.spring.io-jenkins_private_ssh_key', variable: 'DEPLOY_SSH_KEY') +def SONAR_LOGIN_CREDENTIALS = string(credentialsId: 'spring-sonar.login', variable: 'SONAR_LOGIN') + +def jdkEnv(String jdk = 'jdk8') { + def jdkTool = tool(jdk) + return "JAVA_HOME=${ jdkTool }" +} + +try { + parallel check: { + stage('Check') { + node { + checkout scm + sh "git clean -dfx" + try { + withCredentials([GRADLE_ENTERPRISE_CACHE_USER, + GRADLE_ENTERPRISE_SECRET_ACCESS_KEY]) { + withEnv([jdkEnv(), + "GRADLE_ENTERPRISE_CACHE_USERNAME=${GRADLE_ENTERPRISE_CACHE_USERNAME}", + "GRADLE_ENTERPRISE_CACHE_PASSWORD=${GRADLE_ENTERPRISE_CACHE_PASSWORD}", + "GRADLE_ENTERPRISE_ACCESS_KEY=${GRADLE_ENTERPRISE_ACCESS_KEY}"]) { + sh "./gradlew check --stacktrace" + } + } + } catch(Exception e) { + currentBuild.result = 'FAILED: check' + throw e + } finally { + junit '**/build/test-results/*/*.xml' + } + } + } + } + + if(currentBuild.result == 'SUCCESS') { + parallel artifacts: { + stage('Deploy Artifacts') { + node { + checkout scm + sh "git clean -dfx" + withCredentials([SPRING_SIGNING_SECRING, + SPRING_GPG_PASSPHRASE, + OSSRH_CREDENTIALS, + ARTIFACTORY_CREDENTIALS, + GRADLE_ENTERPRISE_CACHE_USER, + GRADLE_ENTERPRISE_SECRET_ACCESS_KEY]) { + withEnv([jdkEnv(), + "GRADLE_ENTERPRISE_CACHE_USERNAME=${GRADLE_ENTERPRISE_CACHE_USERNAME}", + "GRADLE_ENTERPRISE_CACHE_PASSWORD=${GRADLE_ENTERPRISE_CACHE_PASSWORD}", + "GRADLE_ENTERPRISE_ACCESS_KEY=${GRADLE_ENTERPRISE_ACCESS_KEY}"]) { + sh "./gradlew deployArtifacts finalizeDeployArtifacts -Psigning.secretKeyRingFile=$SIGNING_KEYRING_FILE -Psigning.keyId=$SPRING_SIGNING_KEYID -Psigning.password='$SIGNING_PASSWORD' -PossrhUsername=$OSSRH_USERNAME -PossrhPassword=$OSSRH_PASSWORD -PartifactoryUsername=$ARTIFACTORY_USERNAME -PartifactoryPassword=$ARTIFACTORY_PASSWORD --stacktrace" + } + } + } + } + } + } +} catch(Exception e) { + currentBuild.result = 'FAILED: deploys' + throw e +} finally { + def buildStatus = currentBuild.result + def buildNotSuccess = !SUCCESS.equals(buildStatus) + def lastBuildNotSuccess = !SUCCESS.equals(currentBuild.previousBuild?.result) + + if(buildNotSuccess || lastBuildNotSuccess) { + + stage('Notifiy') { + node { + final def RECIPIENTS = [[$class: 'DevelopersRecipientProvider'], [$class: 'RequesterRecipientProvider']] + + def subject = "${buildStatus}: Build ${env.JOB_NAME} ${env.BUILD_NUMBER} status is now ${buildStatus}" + def details = """The build status changed to ${buildStatus}. For details see ${env.BUILD_URL}""" + + emailext ( + subject: subject, + body: details, + recipientProviders: RECIPIENTS, + to: "$SPRING_SECURITY_TEAM_EMAILS" + ) + } + } + } +}